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AMENDMENTS TO THE CLAIMS 

Claim 1 (currently amended): System for reading a document comprising a card provided with 
machine-readable holder details in a machine readable zone and for establishing whether a 
person presenting the document has a predetermined right, which document at least contains a 
chip containing one or more private keys and a biocertificate containing biometric data on the 
biometric data on a holder as well as data with a predetermined relationship to the machine 
readable holder details in the machine readable zone which predetermined relationship is based 
on a one-way function , and wherein the system comprises: 

• a reader for reading the chip and for reading the machine-readable holder details in the 
machine readable zone; 

• a memory containing details with regard to the predetermined right of the holder; 

• a biometric feature scanner arranged to scan a biometric feature of the holder and to 
generate scanned biometric data; 

• a processing unit that is connected to the reader, the memory and the biometric feature 
scanner and is equipped to: 

• establish the authenticity of the chip by transmitting a random challenge code to the 
chip, receiving a digitally signed random challenge code from the chip that is 
obtained by digitally signing said random challenge code by said chip using one of 
said one or more private keys and checking the digitally signed challenge code with a 
certificate from an issuing authority , 

; establish the authenticity of the biometric data in the biocertificate by receiving 
digitally signed biocertificate data that is obtained by digitally signing said data in 
said biocertificate by said chip using one of said one or more private keys and 
checking the digitally signed biocertificate data with the certificate from said issuing 
authority, and ef— t h e -data-hav in g th e predet e rmined r elationsh ip to the ma chine 
readable holder d e tails with th e aid of a public k e y encryption technology; 

* — receive the biometric data on the holder from the chip, from the reader; 
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• receive the scanned biometric data on the person presenting the document from the 
biometric feature scanner and to compare these with the biometric data on the holder 
from the chip as present in said digitally signed biocertificate data to determine 
whether the person presenting the document is the holder; 

• receive the machine readable holder details in the machine readable zone via the 
reader, check said one-way functional th e pr e determined relationship between the 
holder details and the data having said one-way functional the predetermined 
relationship to the machine readable holder details in order to authenticate the 
machine readable holder details in the machine readable zone; and 

• read the predetermined right of the holder from the memory; and 

• provide a signal to indicate the predetermined right for the person presenting the 
document if the chip, the biometric b iocertificate data and the machine readable 
holder details data-are authentic, the predetermined relationship has been established 
and the person presenting the document is the same as the holder. 

Claim 2 (original): System according to Claim 1, wherein the document is a travel document. 

Claim 3 (cancelled) 

Claim 4 (currently amended): System according to Claim I[[3]], wherein the one-way 
function is a hashing function. 

Claim 5 (currently amended): Method for reading a document comprising a card provided 
with machine-readable holder details in a machine readable zone and for establishing whether a 
person presenting the document has a predetermined right, which document contains at least one 
chip containing one or more private keys and a biocertificate containing biometric data on a 
holder as well as data with having a predetermined relationship to the machine readable holder 
details in the machine readable zone which predetermined relationship is based on a one-way 
function , and wherein the method system-comprises a reader for reading the chip and for reading 
the machine readable holder details in th e machin e readabl e zone, a memory containing data on 
' ^ed oiermin e d right of the holder, a biom e tric feature scanner arranged to - sea n a biometric 
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feature of th e holder and to gen e rat e scanned biom e tric data and a proces s ing unit that 



comprises the following operations performed by the proc e ssing unit : 

• establishing authenticity of the chip by transmitting a random challenge code to the chip, 
receiving a digitally signed random challenge code from the chip that is obtained by 
digitally signing said random challenge code by said chip using one of said one or more 
private keys and checking the digitally signed challenge code with a certificate from an 
issuing authority; 

* establishing the authenticity of the data in the biocertificate by receiving digitally signed 
biocertificate data that is obtained by digitally signing said data in said biocertificate by 
said chip using one of said one or more private keys and checking the digitally signed 
biocertificate data with the certificate from said issuing authority; 

* — e stablishm e nt of th e auth e nticity of th e chip, of the biom e tric data and of th e data having 
th e pr e d e termin e d r e lationship to th e machin e r e adabl e hold e r d e tails with th e aid of a 
public k e y e ncryption technology; 

♦ — receipt of th e biom e tric data on th e hold e r from th e chip; 



from a biometric feature scanner and to compare these comparison with the biometric 
data on the holder from the chip as present in said digitally signed biocertificate data to 
determine whether the person presenting the document is the holder; 

• receipt of receiving the machine readable holder details in the machine readable zone via 
a reader , checking said one-way functional relationship between the holder details and 
the data having said one-way functional relationship to the machine readable holder 
details in order to authenticate the machine readable holder details in the machine 
readable zone of th e specific relationship betw e en the holder details and the data having 
the predetermined relationship to the machin e- r e adable holder details and reading the 
predetermined right of the holder from th e memory ; 

* reading the predetermined right of the holder from a memory; and 



connected to th e reader, th e memory and the biometric featur e 



'her e in the method 




-receiving scanned biometric data on the person presenting the document 
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• provision 0 f providing a signal to indicate the predetermined right for the person 
presenting the document if the chip, the biocertificate biometric data and the machine 
readable holder details data-are authentic, the predetermined relationship has been 
established and the person presenting the document is the same as the holder. 

Claim 6 (currently amended): Data carrier device comprising a computer program that can be 
loaded by a system for reading a document comprising a card provided with machine-readable 
holder details in a machine readable zone and for establishing whether a person presenting the 
document has a predetermined right, which document contains at least contains a ene-chip 
containing one or more private keys and a biocertificate containing b iometric data on the a 
holder as well as data with having a predetermined relationship to the machine readable holder 
details in the machine readable zone which predetermined relationship is based on a one-way 
function , and whoroin tho system compris e s a reader for reading the chip and for r e ading th e 
machine r e adable holder details in th e machine readable zone, a memory containing data on th e 
predetermin e d right of th e hold e r, a biom e tric f e atur e scanner arrang e d to scan a biometric 
featur e of th e hold e r and to g e n e rat e scanned biometric data and a proc e ssing unit that is 
conn e ct e d to the r e ader, th e memory and the biometric f e atur e s cann e r, wherein the computer 
program can provide the system with the following functionality: 

• e stablishm e nt of establishing the authenticity of the chip by transmitting a random 
challenge code to the chip, receiving a digitally signed random challenge code from the 
chip that is obtained by digitally signing said random challenge code by said chip using 
one of said one or more private keys and checking the digitally signed challenge code 
with a certificate from an issuing authorit y, of the biom e tric data and of th e data having 
the predetermined relationship to the machin e readable holder details with the aid of a 
public key encryption t e chnology ; 

• establishing the authenticity of the data in the biocertificate by receiving digitally signed 
biocertificate data that is obtained by digitally signing said data in said biocertificate by 
said chip using one or said one or more private keys and checking the digitally signed 
biocertificate data with the certificate from said issuing authority; 
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from a biometric feature scanner and to compare these comparison with the biometric 
data on the holder from the chip as present in said digitally signed biocertificate data to 
determine whether the person presenting the document is the holder; 

• receipt of receiving the machine readable holder details in the machine readable zonejvia 
a reader , checking said one-way functional relationship between the holder details and 
the data having said one-way functional relationship to the machine readable holder 
details in order to authenticate the machine readable holder details in the machine 
readable zone of th e sp e cific r e lationship betw ee n the holder details and th e data having 
the pr o dotorminod relationship to the machine readabl e holder d e tails and reading the 
pred e t e rmin e d right of th e holder from the m e mory ; 

* reading the predetermined right of the holder from a memory; and 



presenting the document if the chip , the biocertificate data and the machine readable 



established and the person presenting the document is the same as the holder. 
Claim 7 (cancelled) 

Claim 8 (currently amended): Document comprising a card provided with machine-readable 
holder details in a machine readable zone and for establishing whether a person presenting the 
document has a predetermined right and a chip, which chip is provided with a processing unit 
and memory connected thereto and an input/output unit, wherein the memory contains one or 
more private keys and a biocertificate containing biometric data on a holder, as well as data that 
have a predetermined relationship to the machine readable holder details in the machine readable 
zone which predetermined relationship is based on a one-way function , as well as instructions for 
making the processing unit carry out the following operations: 




-providing a signal to indicate the predetermined right for the person 



holder details 



-are authentic, the predetermined relationship has been 
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• communication with a system according to Claim 1 to enable the authenticity of the chip 
and of said data in said biocertificate to be established with the aid of a public key 
encryption technology by performing the following operations: !!;]] 

* — transmission of the biometric data on th e holder and th e data having the predetermined 
relationship to th e machin e r e adable holder details from the memory to the system. 

* receiving a random challenge code, digitally signing said random challenge code 
using one of said one or more private keys rendering a digitally signed random 
challenge code and transmitting said digitally signed random challenge code via said 
input/output unit to said system, 

* digitally signing said data in the biocertificate using one of said one or more private 
keys rendering digitally signed biocertificate data and transmitting said digitally 
signed biocertificate data via said input/output unit to said system. 

Claim 9 (previously presented): Document according to Claim 8, wherein the document is a 
travel document. 

Claim 10 (previously presented): Document according to Claim 9, wherein the chip is an 
integral part of the travel document. 

Claim 11 (previously presented): Document according to Claim 8, wherein the input/output 
unit is equipped for contact-free communication. 

Claim 12 (previously presented): Document according to Claim 8, wherein the chip is 
equipped as a transponder unit. 

Claim 13-25 (cancelled) 



7 



